Project

authorized_networks

0.0
No commit activity in last 3 years
No release in over 3 years
authorized_networksadamcooke/authorized_networksHomepageDocumentationSource CodeBug TrackerWiki
An easy way to verify IPs are on authorized networkjs.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
6,791
Stars
8
Forks
0
Watchers
2
 Releases
Current version
1.0.2
Total releases
3
First release
2018-03-06
Latest release
2018-03-07
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2018-03-07
Reverse Dependencies
0

 Dependencies
 Project Readme

Authorized Networks

Build Status Gem Version

This library is a very small wrapper to help identify whether a given IP address is part of an authorized network or not. It integrates with Rails applications to provide a before_action callback which can be used to block unauthorized requests.

Installation

gem 'authorized_networks'

Configuration

You need to provide a list of authorized networks in the form a YAML file. By default, in a Rails application, it will look in RAILS_ROOT/config/authorized_networks.yml and for a non-Rails application it'll look in /etc/authorized_networks.yml.

The config file itself is split into groups which can be enabled or disabled. For example:

default:
  - 127.0.0.1/32
  - 10.0.0.0/24
  - 2a00:67a0:abcd::/64

vpn:
  - 172.16.0.0/24

oob:
  - 10.2.44.12

In this file, there are two groups, the default group and the vpn group.

AuthorizedNetworks.configure do |config|

  # Always include the vpn group when validating IPs are on the authorized network
  config.default_groups << :vpn

  # Change the path to the config file
  config.networks_file_path = "/some/other/path.yml"

  # Disable everything. Any query to determine if an IP is valid will return true.
  config.disable!

  # Set a list of approved networks (an hash with arrays of strings or IPAddr objects, please)
  # if you don't wish to load from a file.
  config.networks = {:some_group => ['172.16.0.0/24']}

end

Usage

In the most basic form, you can simply use the valid_ip? method.

# The most basic which will check in the default groups
AuthorizedNetworks.valid_ip?('1.2.3.4')

# Check in a list of groups
AuthorizedNetworks.valid_ip?('1.2.3.4', :groups => [:oob])

# Raise an error if there's an invalid IP
AuthorizedNetworks.valid_ip!('1.2.3.4')

Usage in a Rails controller

You can easily verify that

class AdminController < ApplicationController

  before_action :require_authorized_network

  rescue_from AuthorizedNetworks::UnauthorizedNetworkError, :with => :unauthorized_network_error

  private

  def unauthorized_network_error
    redirect_to root_path, :notice => "Your are not permitted to access this URL."
  end

end